A computer-implemented method for preventing password leakage into a non-password field includes detecting that a user of an electronic device has entered a character in a non-password field appearing on a display associated with the electronic device. The character is echoed to at least the display, and stored to provide a stored character string. The stored character string is compared to a set of valid entries for the non-password field, when length of the stored character string reaches a predetermined threshold value. An alert is transmitted when the stored character string fails to match at least a substring of an element of the set of valid entries for the non-password field.
Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
1. A computer-implemented method for preventing password leakage into a user name field, comprising: responsive to detecting, by a hardware processor, at least a character of a set of characters has been entered in a user name field appearing on a display associated with an electronic device, incrementing and storing a character count to provide a stored character string of the entered characters in the user name field; responsive to the stored character string reaching a predetermined threshold value, comparing the stored character string to the set of valid user name entries corresponding to the user name field; and responsive to determining that the stored character string fails to match a portion of any of the user name entries in the set of valid user name entries: clearing a display of the stored character string; locking out the user from the user name field until security has been re-established; transmitting by the hardware processor a first alert to the display associated with the electronic device, and transmitting by the hardware processor a second alert, wherein the second alert is transmitted to a mobile phone number associated with valid user names entries indicating a portion of a user password is at risk of being compromised.
This invention relates to computer security and specifically addresses the problem of preventing accidental password entry into a user name field, which can lead to password leakage. The method involves monitoring a user name field on a display. When at least one character from a predefined set of characters is entered into this field, a hardware processor counts and stores the entered characters. If the stored character string reaches a specific length, it is compared against a list of valid user name entries. If the entered string does not match any part of a valid user name, the system takes several actions. The displayed characters are erased, and the user is prevented from entering further characters into the user name field until security is restored. Additionally, a first alert is sent to the electronic device's display, and a second alert is transmitted to a mobile phone number associated with valid user names, warning that a portion of a user password may be at risk of compromise.
2. The computer-implemented method of claim 1 , further comprising: determining whether sufficient information has been collected to permit identification of the user of the electronic device or the electronic device itself; and wherein positive identification of the user or the device cannot be established, applying the collected information to reduce the set of valid user name entries to which the stored character string is compared.
Building upon the previous password protection mechanism, the system attempts to identify the user or device. If identification fails, it uses any available information to narrow down the list of valid usernames used for comparison. Instead of comparing against all valid usernames, it only compares against a smaller subset of usernames that are likely to be associated with the user or device based on the limited information that is available. This reduces the possibility of false positives.
3. The computer-implemented method of claim 2 , wherein applying the collected information to reduce the set of valid user name entries to which the stored character string is compared further comprises: evaluating the collected information; and excluding elements of the set of valid entries that are not associated with sufficient characteristics related to the collected information.
Continuing from the previous description, when narrowing down the list of valid usernames based on collected information, the system evaluates the collected information (e.g., IP address, location). It then excludes usernames from the valid list that don't align with this information. For instance, if the IP address originates from a specific country, only usernames associated with accounts from that country remain for comparison, preventing passwords that are not associated with that location from being compromised.
4. The computer-implemented method of claim 1 , wherein detecting that a user of an electronic device has entered a character in a user name field appearing on a display associated with the electronic device further comprises: rendering content provided to the electronic device by a server; determining that a character has been entered in an active field within the rendered content; and determining that the active field is a user name field.
The system identifies when a user types in a username field by first rendering content from a server on the device. It monitors any text entered into active fields within that rendered content. If the system detects text entry in an active field, it determines if that field is a username field. This determination could involve analyzing the field's HTML attributes or associated labels to confirm its intended use as a username input.
5. The computer-implemented method of claim 1 , wherein detecting at least a character has been entered in a user name field appearing on a display associated with an electronic device comprises receiving an input from a password application.
In this enhancement to the password protection mechanism, the detection of characters entered into a username field can also occur by receiving input directly from a password management application. Instead of the system directly monitoring the username field, a password application can communicate the entered characters to the system, which then performs the same validation checks against valid usernames as described previously, enhancing security by using the password manager.
6. The computer-implemented method of claim 1 , wherein transmitting an alert, when the stored character string fails to match at least a substring of an element of the set of valid entries for the user name field further comprises: transmitting an alert that includes one or more of an audible alert, a visual alert, and an alert message transmitted to a designated recipient.
When the entered text fails to match valid username entries, the alert can be any combination of an audible notification, a visual indicator on the screen (e.g., a flashing warning), and/or a text message sent to a pre-defined recipient (e.g., the user's registered phone number, a security administrator). This provides a flexible and multi-faceted alerting system when potential password leakage is detected.
7. A computer program product for preventing password leakage into a user name field, comprising: one or more non-transitory computer readable storage media and program instructions stored on the one or more non-transitory computer readable storage media, the program instructions comprising: program instructions to, responsive to detecting at least a character of a set of characters has been entered in a user name field appearing on a display associated with an electronic device, increment and store a character count to provide a stored character string of the entered characters in the user name field; program instructions to, responsive to the stored character string reaching a predetermined threshold value, compare the stored character string to the set of valid user name entries corresponding to the user name field; and program instructions to, responsive to determining that the stored character string fails to match a portion of any of the user name entries in the set of valid user name entries, program instructions to: clear a display of the stored character string; lock out the user from the user name field until security has been re-established; transmit a first alert to the display associated with the electronic device, and transmit a second alert, wherein the second alert is transmitted to a mobile phone number associated with valid user names entries indicating a portion of a user password is at risk of being compromised.
This is a software implementation of the password protection method. Program instructions running on a device detect characters being entered into a username field. These characters are stored, and when the stored character string reaches a certain length, it's compared to valid username entries. If a match isn't found, the entered text is cleared, the username field is locked, a first alert is displayed on the screen, and a second alert is sent to the mobile phone number associated with valid usernames, warning of potential password compromise.
8. The computer program product of claim 7 , wherein the program instructions stored on the one or more computer readable storage media further comprise: program instructions to determine whether sufficient information has been collected to permit identification of the user of the electronic device or the electronic device itself; and wherein positive identification of the user or the device cannot be established, applying the collected information to reduce the set of valid user name entries to which the stored character string is compared.
The software implementing the password leakage prevention system also includes instructions to identify the user or device. If the user or device cannot be identified with sufficient certainty, the instructions apply the available data to reduce the number of valid username entries that the stored character string is compared against, thereby narrowing the search. The instructions help ensure that only relevant usernames are compared, especially when limited user information is available.
9. The computer program product of claim 8 , wherein the program instructions to apply the collected information to reduce the set of valid user name entries to which the stored character string is compared further comprise: program instructions to evaluate the collected information; and program instructions to exclude elements of the set of valid entries that are not associated with sufficient characteristics related to the collected information.
Within the software program, the instructions to reduce the list of valid username entries include steps to analyze the collected information about the user or device. The program then filters out any usernames that are not sufficiently related to the collected data. This narrowing process refines the comparison set, improving the accuracy of the password leakage detection system.
10. The computer program product of claim 7 , wherein the program instructions to detect that a user of an electronic device has entered a character in a user name field appearing on a display associated with the electronic device further comprise: program instructions to render content provided to the electronic device by a server; program instructions to determine that a character has been entered in an active field within the rendered content; and program instructions to determine that the active field is a user name field.
In this software implementation, the program's instructions detect characters entered into a username field by first rendering content received from a server. The instructions monitor the rendered content for text input in active fields. If text input is detected, the program determines whether the specific active field is indeed a username field before initiating the password leakage prevention measures.
11. The computer program product of claim 7 , wherein the program instructions to detect at least a character has been entered in a user name field appearing on a display associated with an electronic device comprise program instructions to receive an input from a password application.
Within the software program, the instructions to detect characters being entered in the username field can receive input from a password management application. The program utilizes the input from the password application and proceeds with the validation process against valid username entries.
12. The computer program product of claim 7 , wherein the program instructions to transmit an alert, when the stored character string fails to match at least a substring of an element of the set of valid entries for the user name field further comprise: program instructions to transmit an alert that includes one or more of an audible alert, a visual alert, and an alert message transmitted to a designated recipient.
In the software version of the password protection system, when alerting the user that the entered text doesn't match valid username entries, the alert can include one or more of these elements: an audible sound, a visual notification on the display, and/or a message sent to a designated recipient. The instructions provide flexibility in how the alert is conveyed to the user and relevant parties.
13. A computer system for preventing password leakage into a user name field, comprising: one or more computer hardware processors; one or more computer readable storage media; and program instructions stored on the one or more computer readable storage media for execution by at least one of the one or more computer hardware processors, the program instructions comprising: program instructions to, responsive to detecting at least a character of a set of characters has been entered in a user name field appearing on a display associated with an electronic device, increment and store a character count to provide a stored character string of the entered characters in the user name field; program instructions to, responsive to the stored character string reaching a predetermined threshold value, compare the stored character string to the set of valid user name entries corresponding to the user name field; and program instructions to, responsive to determining that the stored character string fails to match a portion of any of the user name entries in the set of valid user name entries, program instructions to: clear a display of the stored character string; lock out the user from the user name field until security has been re-established; transmit a first alert to the display associated with the electronic device, and transmit a second alert, wherein the second alert is transmitted to a mobile phone number associated with valid user names entries indicating a portion of a user password is at risk of being compromised.
This is a hardware and software system that prevents password leakage into a username field. It includes one or more computer processors, computer storage, and program instructions. When characters are entered in a username field, the system stores them. Once the stored characters reach a threshold, the system compares them to valid username entries. If a match isn't found, it clears the display, locks the username field, and sends two alerts: one to the screen and another to the mobile number linked to the valid usernames, warning about potential password compromise.
14. The computer system of claim 13 , wherein the program instructions stored on the one or more computer readable storage media further comprise: program instructions to determine whether sufficient information has been collected to permit identification of the user of the electronic device or the electronic device itself; and wherein positive identification of the user or the device cannot be established, applying the collected information to reduce the set of valid user name entries to which the stored character string is compared.
The hardware and software system implementing password protection also determines if enough information has been collected to identify the user or device. If not, the system uses the available data to reduce the set of valid username entries it compares against, only comparing against relevant usernames when there is limited user or device data.
15. The computer system of claim 14 , wherein the program instructions to apply the collected information to reduce the set of valid user name entries to which the stored character string is compared further comprise: program instructions to evaluate the collected information; and program instructions to exclude elements of the set of valid entries that are not associated with sufficient characteristics related to the collected information.
Within the hardware and software system, the program instructions for reducing the valid username list analyze collected user/device information and exclude username entries lacking sufficient correlation to the gathered data. This refining step improves the accuracy of the password leakage detection mechanism.
16. The computer system of claim 13 , wherein the program instructions to detect that a user of an electronic device has entered a character in a user name field appearing on a display associated with the electronic device further comprise: program instructions to render content provided to the electronic device by a server; program instructions to determine that a character has been entered in an active field within the rendered content; and program instructions to determine that the active field is a user name field.
In the hardware/software system, the program detects username entry by rendering server-provided content, monitoring for text input in active fields, and verifying that the active field is indeed a username field before triggering password protection measures.
17. The computer system of claim 13 , wherein the program instructions to detect at least a character has been entered in a user name field appearing on a display associated with an electronic device comprise program instructions to receive an input from a password application.
In the described system, detecting characters in a username field involves receiving input from a password application, which is then processed through the same validation steps against valid username entries.
18. The computer system of claim 13 , wherein the program instructions to transmit an alert, when the stored character string fails to match at least a substring of an element of the set of valid entries for the user name field further comprise: program instructions to transmit an alert that includes one or more of an audible alert, a visual alert, and an alert message transmitted to a designated recipient.
The hardware/software system's alert, triggered by non-matching input, can include an audible tone, visual display, or a message transmitted to a designated recipient, providing flexible notification.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
May 9, 2016
April 4, 2017
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.